法国BV船级社新入级符号直指网络安全挑战

随着网络互连船舶数量的快速增长，网络安全已经成为海洋行业的一个重要议题。关键技术已经体现了显著的网络安全弱点。而网络安全事件的增多以及损失险的缺乏凸显了信息保障的必要性。

好的消息是，操作技术基础设施和连接的设备将受到良好的保护：通过对硬件物理访问的控制、对网络危害的保护、数据或代码注入以及意识训练来避免操作员的疏忽。

BV开发了一套整体性的方法来支持它的客户。与美国国家标准与技术研究所开发的网络安全框架相一致，三个主要步骤分别是：识别保护、检测减轻和恢复改进。

两个已经生效的入级符号用来支持船东对网络风险的管理：SW Registry专注于软件变更管理，并能满足IACS UR E22的要求。SYS COM是一个可以自主选择的入级符号，旨在防止通过远程访问进行恶意网络攻击，覆盖船舶和岸上的数据交换。BV是最早为这一关键风险提供入级符号的船级社。最后，BV的NI 641（基于自主船舶目标的建议指南），为船舶基本系统的最低功能要求以及提高系统可靠性提供了指导。另有入级符号CyberSecure X (X = 1, 2, 3)即将推出。

在4月召开的智能船舶研讨会上，BV 曾对网络安全的相关规范做了详细的解释。

NEW NOTATIONS ADDRESS CYBER SECURITY CHALLENGES

Cyber security is a major concern for the marine industry, with its rapidly growing fleet of connected ships. Critical technology has demonstrated significant cyber security weaknesses. In addition, an increase in cyber incidents combined with a lack of insurance coverage for losses make the safeguarding of that information an imperative.

The good news is that operational technology infrastructure and connected equipment can be protected: through control of physical access to hardware, protection against harm from networks, data or code injection, and awareness training to avoid intentional malpractice by operators.

Bureau Veritas has developed a holistic approach to support its clients. In line with the cyber security framework developed by the US National Institute of Standards and Technology, the three main action-based steps are: identify to protect; detect to mitigate; and recover to improve.

Two class notations support owners’ management of cyber risk. SW Registry focuses on software change management, and enables recognition of compliance with IACS UR E22. SYS-COM is a voluntary notation aimed at preventing malicious cyber attacks through remote access, covering the exchange of data between ship and shore. Bureau Veritas is currently the only classification society to offer a notation for this key risk. Finally, NI 641- Guidelines for Autonomous Shipping goal-based recommendations is setting a minimum level of functionality of essential systems and guidance for improving system reliability.

‘At Bureau Veritas, we welcome innovation, and are proud to support our clients with their new ideas, using the expertise we have acquired over decades of testing, inspection and certification, to make their ideas reality.’

点赞主要看气质！